Pages

Tuesday, October 19, 2010

Rapid7®, the leading provider of unified vulnerability management and penetration testingsolutions, today announced the availability of Metasploit Pro™, the new software for security professionals in enterprises, government agencies and consulting firms who need to make network security testing more efficient to reduce costs. Unlike alternative products, Metasploit Pro improves the efficiency of penetration testers by providing unrestricted remote network access and enabling teams to collaborate efficiently. Metasploit Pro exceeds the functionality of Metasploit Express™ with support for security testing of custom Web applications, managing client-side campaigns against end-users and additional evasion features.

“Enabling penetration testers to share findings and notes definitely helps keep everyone in synch and productivity moving. It’s also a great time saver at the end of an assignment because you can create a single report including everyone’s findings at the push of a button.”

“Metasploit Pro completes our suite of penetration testing products and addresses the needs of the penetration testing expert who requires advanced features,” said Mike Tuchen, Rapid7 president and CEO. “We built Metasploit Pro with the same intuitive interface and efficient workflows of Metasploit Express and added advanced features that enable penetration testers to compromise networks deeper and faster. As a result, they can complete their security testing in less time, greatly reducing the overall impact on security budgets.”

The Metasploit® Framework is the most widely used and mature solution in the market with more than one million unique downloads in the past year and the world’s largest, public database for quality assured exploits. As organizations face increasing threats to complex, business-critical systems, the ability to simulate realistic attacks on their infrastructure in a fast and cost-effective manner is critical. Only Metasploit products are based on the Metasploit Framework, the gold standard for penetration testing, and are therefore best suited to emulate realistic attacks.

To efficiently ensure the highest possible security of their IT infrastructure, enterprises need to prioritize the mitigation of vulnerabilities. Metasploit is the world’s only penetration testing solution that directly launches NeXpose® vulnerability scans to verify vulnerabilities. Based on this enterprise risk scoring, organizations can make informed decisions about which vulnerabilities should be addressed first.

“We’ve been thrilled with all the capabilities of Metasploit Express and were excited to try the advanced features of the new Metasploit Pro, especially team collaboration,” says Jim O'Gorman, security systems specialist at Continuum Worldwide, a leading independent provider of business assurance solutions and a Rapid7 customer. “Enabling penetration testers to share findings and notes definitely helps keep everyone in synch and productivity moving. It’s also a great time saver at the end of an assignment because you can create a single report including everyone’s findings at the push of a button.”

Metasploit Pro:

Scans and exploits Web applications. Metasploit Pro enables you to scan and exploit both standard and custom Web applications, often the most publicly accessible server on the network. These can provide a pivot point into a database or further into the network.

Achieves unprecedented network access. Metasploit Pro is the world’s only penetration testing solution to achieve unrestricted remote network access through a compromised host. Unlike alternative products, which provide proxy-based pivoting that is restricted to certain protocols, Metasploit Pro’s VPN pivoting evades firewall restrictions and provides encrypted access into networks at the Ethernet level, providing the same capabilities as a physical network tap. As a result, penetration testers can run any network discovery tool, such as the NeXpose vulnerability scanner, through a compromised host as if they were directly connected to the internal network.

Enables unique team collaboration. Metasploit Pro is the world’s first penetration testing solution that supports team collaboration to coordinate concerted attacks. Team members can see and search each other’s actions, progress and notes to make team efforts more efficient. Known hosts, credentials and hashes are automatically leveraged by other team members.

“I firmly believe that Metasploit Pro combines best-of-breed tools in a sane, easy-to-use format, enabling us to do our job quickly and thoroughly,” says Joshua Brashars, senior security consultant at AppSec Consulting, an information security firm and a Rapid7 consulting partner. “With Metasploit Pro, my team can maximize the efficiency of our penetration tests while minimizing the number of tools we require. Metasploit Pro combines the power of the Metasploit Framework with a simple-to-use interface that allows us to hit the ground running.”

“With Metasploit Pro, we’ve delivered a solution for penetration testers who love the workflow of Metasploit Express but needed to go even further with their security assessments,” said HD Moore, Rapid7 CSO and Metasploit chief architect. “Rapid7 is uniquely positioned to offer a multi-tiered product that solves the real-world challenges of hundreds of thousands of security professionals and researchers. And, as a result of our success with commercial products, we’re able to drive higher quality, additional features and faster exploit development in the free, open-source framework, giving directly back to the community that sustains us.”

COUNT

Followers

Twitter Updates 2.2: FeedWitter

About Me

Prajwal Panchmahalkar was born in Hyderabad, a city in AP,eleventh december of nineteen hundred eighty nine A.D, a saggitarian. From that day onwards, Prajwal has been in the late beta version ever since. Now he is a fully grown dude aged 20 years and pursuing useless "BTech" from TKR Engg College.

During his pursuit of knowledge, Prajwal has spent School Days at the various schools around AP from Vijay High in Armoor then to St. Claret at Medchal, Hyderabad . After completing his useless Schooling from Siddhartha School, he joined in to be trained for IIT at Krishna Murthy's V study Circle and his current progression with IT includes MCITP (Microsoft Certified IT professional) and SCJP (Sun Certified Java Programmer) and looking ahead to be a SCJD . Prajwal Panchmahalkar loves fooling around with computers and probably this is what got him into IT field.

Prajwal now feels proud to be a Network Security guy playing around with boxes and feels proud to MOderate the Hyderabad NULL chapter.He has attended various conferences like ISD,c0c0n and SuntechDays. Prajwal has also delivered awareness seminars on network security and ethical hacking at various colleges (GRIET, TKR) and various other events. Prajwal finds his interest in the Matriux Project and pleasure advancing with it

He is now certified CEH v6 along with his past achievements being AFCEH, ACE. Prajwal finds pleasure in writing articles for magazines recently his article *METASPLOIT FRAMEWORK* was published in "DeveloperIQ" magazine , he is also looking forward to make into CHmag lately

Although Prajwal has not been lately into social life, he finds interest into it recently. he made up few vacancies for the standing "girlfriend" so if anyone finds her profile matching for the said posting can approach him either through mail or contact him directly....!!

Prajwal likes to listen music and his tastes range from the Indian Classical music to Metal and Rock. Prajwal lives on Enrique, Green Days, Rasmus,POD,Atif and JAL songs. Prajwal enjoys to dance, but he has no co-ordination in his body movements, his steps are not graceful and he has two left feet.Facebook, twitter and now Google+, Gaming, Cricket and Biking are pastimes that Prajwal indulges in. Prajwal also likes to gaze at stars and many a night is spent at the rooftop looking at the sky and wishing to become an astronaut. Prajwal himself doesnt know what he searches for, in the stars. Fortune says Prajwal is destined to be a Doctor but Prajwal doesnt find it easy to do with his BTech in hand. Prajwal is a dreamer, although his philosophy on life is limited and he is still exploring his boundaries, his dreams have gotten him into trouble many times.Prajwal is a citizen of India, that is Bharat and loves the country, but has radical views on politics and politicians. Prajwal loves to travel, exploring unknown places, especially in the hills. Prajwal hates pollution and heat. Prajwal is nocturnal, he is attracted to the night because it is mysterious ................................................ ............................ ( to be contd. ) edited :04/02/2011